I have spent the
last 4-5 hours scrounging google articles on this and have found 2 solutions.
The problem is one of them is something that we will not do (as MS will not
support extending AD with Services For Unix(SFU)).
The other is simply
configuring kerberos and pam on the linux system. No problem there from what I
can tell.
Ticket cache:
FILE:/tmp/krb5cc_0
Default principal: userid@xxxxxxx
Default principal: userid@xxxxxxx
Valid
starting
Expires
Service principal
07/05/06 07:23:03 07/05/06 17:23:47 krbtgt/DOM.AIN@xxxxxxx
renew until 07/06/06 07:23:03
07/05/06 07:23:03 07/05/06 17:23:47 krbtgt/DOM.AIN@xxxxxxx
renew until 07/06/06 07:23:03
Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached
The problem though
is configuring winbind from the console (all of the linux systems are nothing
more than the kernel, ssh and the few apps necessary for the system to do it's
job). All the online examples I have been able to find use the linux GUI.
Does anyone know of
a document (or mind sharing) how they installed and configured the samba 3
winbind daemon to map SID's to unix uid's/gid's? That would eliminate the need
to extend the active directory schema.
thanks,
Greg
_______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
